CN105631298B - A kind of ciphering and deciphering device and method - Google Patents

A kind of ciphering and deciphering device and method Download PDF

Info

Publication number
CN105631298B
CN105631298B CN201510969806.6A CN201510969806A CN105631298B CN 105631298 B CN105631298 B CN 105631298B CN 201510969806 A CN201510969806 A CN 201510969806A CN 105631298 B CN105631298 B CN 105631298B
Authority
CN
China
Prior art keywords
ciphering
terminal equipment
master control
usb interface
safety chip
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201510969806.6A
Other languages
Chinese (zh)
Other versions
CN105631298A (en
Inventor
郑文德
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing WatchSmart Technologies Co Ltd
Original Assignee
Beijing WatchSmart Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing WatchSmart Technologies Co Ltd filed Critical Beijing WatchSmart Technologies Co Ltd
Priority to CN201510969806.6A priority Critical patent/CN105631298B/en
Publication of CN105631298A publication Critical patent/CN105631298A/en
Application granted granted Critical
Publication of CN105631298B publication Critical patent/CN105631298B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication
    • G06F21/445Program or device authentication by mutual authentication, e.g. between devices or programs
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules

Abstract

The invention discloses a kind of ciphering and deciphering device and methods, belong to data safety technical field of memory.The device includes the master control safety chip (1) for being stored with personal identification number, the first USB interface (2) and secondary USB interface (3) being connect respectively with master control safety chip (1), further include the rechargeable battery (4) for powering for device, rechargeable battery (4) is connect with the master control safety chip (1).Using ciphering and deciphering device provided by the present invention and method; can encryption and decryption operation easily be carried out to the data in the terminal devices such as PC machine or mobile phone; and protect encrypted ciphertext data in the presence of not ciphering and deciphering device; the access to ciphertext data is cannot achieve, the safety of the data stored in terminal device is substantially increased.

Description

A kind of ciphering and deciphering device and method
Technical field
The present invention relates to data safety technical field of memory, and in particular to a kind of ciphering and deciphering device and method.
Background technology
Currently, with the fast development of electronic equipment, user can generally store same part data file to different In electronic equipment, the data that will be such as stored in PC machine also are stored in the mobile phone of oneself, to facilitate looking at any time to data It sees.And user also increasingly payes attention to the safety of the information such as oneself private data, vital document, confidential data, it is undesirable to Individual or entity without permission accesses and reads these information.Although user may be used the mode of encryption software to data into Row encryption storage, but after mobile phone is lost or is stolen, criminal is still able to crack encryption data.Therefore, it is badly in need of a kind of Good encryption and decryption mode so that though criminal steal user mobile phone to stored in mobile phone important personal information if nothing Method is normally accessed and is read.The novel ciphering and deciphering device and method that the present invention exactly proposes regarding to the issue above.
Invention content
In view of the deficiencies in the prior art, it the purpose of the present invention is to provide a kind of ciphering and deciphering device and method, adopts With the device and method, even if terminal device can not be accessed if losing the ciphertext data in equipment by criminal.
To achieve the above object, the technical solution adopted by the present invention is as follows:
A kind of ciphering and deciphering device, including be stored with the master control safety chip of personal identification number, respectively with master control safety chip The first USB interface and secondary USB interface of connection, further include the rechargeable battery for powering for device, rechargeable battery with The master control safety chip connection.
Further, a kind of ciphering and deciphering device as described above, which further includes that rechargeable battery is charged and supplied The power management module of fulgurite reason, rechargeable battery are connect by power management module with master control safety chip.
Further, a kind of ciphering and deciphering device as described above, the power management module includes power-switching circuit, can be filled Battery is connect by power-switching circuit with master control safety chip.
Further, a kind of ciphering and deciphering device as described above, the power management module further includes for chargeable electricity Pond carries out the charge management circuit of charge protection, and the charge management circuit is connect with rechargeable battery.
Further, a kind of ciphering and deciphering device as described above, which further includes the display being connect with master control safety chip Module, the charge management circuit are also connect with master control safety chip.
Further, a kind of ciphering and deciphering device as described above, the master control safety chip are grasped for built-in TimeCOS smart cards Make the safety chip of system.
Further, a kind of ciphering and deciphering device as described above, first USB interface are standard USB interface;Described second USB interface is the USB interface except standard USB interface.
Further, the device medium of a kind of ciphering and deciphering device as described above, the ciphering and deciphering device is wearable intelligence The apparatus carriers of energy equipment.
Based on above-mentioned ciphering and deciphering device, the present invention also provides a kind of encipher-decipher methods, including be-encrypted data is carried out The mode that be-encrypted data is encrypted includes by encryption and the step of encryption data is decrypted:
(1) terminal device with USB interface is connect by the first USB interface or secondary USB interface with ciphering and deciphering device, And to ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
(2) the device authentication request that ciphering and deciphering device receiving terminal apparatus is sent, master control safety chip prestore according to it Encrypted personal identification number described in decryption key decryption, and compare the personal identification number after decryption and know with the personal of its storage inside Whether other code is identical, if so, entering in next step, if it is not, then master control safety chip sends authentication error prompt to terminal device; The decruption key is that ciphering and deciphering device is arranged with terminal device, corresponding with the terminal device encryption key of personal identification number Decruption key;
(3) be-encrypted data is sent to master control safety chip by terminal device, and master control safety chip adds be-encrypted data Terminal device is returned to after close;
Include by the mode that encryption data is decrypted:
1) terminal device with USB interface is connect by the first USB interface or secondary USB interface with ciphering and deciphering device, And to ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
2) the device authentication request that ciphering and deciphering device receiving terminal apparatus is sent, the solution that master control safety chip prestores according to it Encrypted personal identification number described in close secret key decryption, and compare the personal identification number after decryption and identified with the personal of its storage inside Whether code is identical, if so, entering in next step, if it is not, then master control safety chip sends authentication error prompt to terminal device;
3) encryption data is sent to master control safety chip by terminal device, and master control safety chip returns after decrypting encryption data Return to terminal device.
Based on above-mentioned ciphering and deciphering device, the present invention also provides another encipher-decipher methods, including by be-encrypted data into Capable the step of encrypting and encryption data is decrypted, include by the mode that be-encrypted data is encrypted:
(1) the first terminal equipment with USB interface is connect by the first USB interface with ciphering and deciphering device, is connect with USB The second terminal equipment of mouth is connect by secondary USB interface with ciphering and deciphering device, first terminal equipment and second terminal equipment point Not to ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
(2) ciphering and deciphering device receives the device authentication request that first terminal equipment and second terminal equipment are sent respectively, main The encrypted personal identification number that control safety chip is sent according to the first decryption key decryption first terminal equipment that it prestores, uses The encrypted personal identification number that second decryption key decryption second terminal equipment is sent, and it is respectively compared first terminal equipment and the The personal identification number for personal identification number and its storage inside that two terminal devices are sent whether all same, if so, into next Step, if it is not, then master control safety chip sends authentication error prompt to different terminal device;
First decruption key is that ciphering and deciphering device is arranged with first terminal equipment and the encryption of first terminal equipment The corresponding decruption key of key of people's identification code;Second decruption key is that ciphering and deciphering device is arranged with second terminal equipment , with the corresponding decruption key of the second terminal equipment encryption key of personal identification number;
(3) first terminal equipment sends the finger that be-encrypted data is safely stored into second terminal equipment to ciphering and deciphering device It enables, master control safety chip is sent to second terminal equipment according to the instruction of first terminal equipment after encrypting be-encrypted data;
Include by the mode that encryption data is decrypted:
1) the first terminal equipment with USB interface is connect by the first USB interface with ciphering and deciphering device, is connect with USB The second terminal equipment of mouth is connect by secondary USB interface with ciphering and deciphering device, first terminal equipment and second terminal equipment point Not to ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
2) ciphering and deciphering device receives the device authentication request that first terminal equipment and second terminal equipment are sent, master control respectively The encrypted personal identification number that the first decryption key decryption first terminal equipment that safety chip prestores according to it is sent, using the The encrypted personal identification number that two decryption key decryption second terminal equipment are sent, and it is respectively compared first terminal equipment and second The personal identification number for personal identification number and its storage inside that terminal device is sent whether all same, if so, enter in next step, If it is not, then master control safety chip sends authentication error prompt to different terminal device;
3) second terminal equipment is sent to the finger of first terminal equipment after decrypting encryption data to ciphering and deciphering device transmission It enables, master control safety chip is sent to first terminal equipment according to the instruction of second terminal equipment after decrypting encryption data.
The beneficial effects of the present invention are:Ciphering and deciphering device provided by the present invention and method, it may be convenient to PC machine Or the data in the terminal devices such as mobile phone carry out encryption and decryption operation, and protect encrypted ciphertext data in no ciphering and deciphering device Participation under, cannot achieve the access to ciphertext data, substantially increase the safety of the data stored in terminal device.
Description of the drawings
Fig. 1 is a kind of structural schematic diagram of the ciphering and deciphering device provided in the specific embodiment of the invention;
Fig. 2 is a kind of flow chart of the encipher-decipher method provided in the specific embodiment of the invention;
Fig. 3 is the flow chart of another encipher-decipher method provided in the specific embodiment of the invention.
Specific implementation mode
The present invention is described in further detail with specific implementation mode with reference to the accompanying drawings of the specification.
Fig. 1 shows a kind of structural schematic diagram of the ciphering and deciphering device provided in the specific embodiment of the invention, by figure As can be seen that the ciphering and deciphering device includes master control safety chip 1, the first USB interface 2 being connect respectively with master control safety chip 1 Further include the rechargeable battery 4 for powering for device, rechargeable battery 4 and the safe core of the master control with secondary USB interface 3 Piece 1 connects.Wherein, it is stored with personal identification number PIN code in the master control safety chip 1, is realized by personal identification number and added Decrypt the authentication of the terminal device of device connection.
In present embodiment, the safety chip of TimeCOS smart card operating systems that has been built-in of master control safety chip 1 is main Secure storage has various keys, PIN code and associated documents in control safety chip 1, has the peaces such as encryption, decryption, signature and verification Full algorithm, therefore, after exterior terminal equipment can be connect by the first USB interface 2 or secondary USB interface 3 with ciphering and deciphering device, It is realized by master control safety chip 1 and the safety of data is encrypted, encrypted data only have the master control by the ciphering and deciphering device Safety chip 1 can be decrypted, and therefore, be stored in equipment using the device even if the terminal device of user is lost or is stolen Encryption data can not be also accessed.
The ciphering and deciphering device that present embodiment is provided, in practical applications, the master control safety chip 1 can pass through one A function safety chip powerful enough is realized to the verification of terminal device, the encryption and decryption of data and device and terminal simultaneously Communication control between equipment, certainly, master control safety chip 1 can also include a safety chip and be set for device and terminal The control chip of communication control between standby, safety chip is realized to the verification of terminal device and the encryption and decryption of data, and chip is controlled Data interaction between realization device and terminal device.
As shown in Figure 1, in present embodiment, the ciphering and deciphering device can also include to rechargeable battery 4 carry out charging and The power management module 5 of power supply management, rechargeable battery 4 are connect by power management module 5 with master control safety chip 1.Wherein, The power management module 5 includes power-switching circuit 6, and rechargeable battery 4 passes through power conversion chip 6 and master control safety chip 1 connection, master control safety chip 1 is by rechargeable battery 4 through 6 voltage stabilizing of power-switching circuit at the operating voltage of master control safety chip 1 After power.If the operating voltage of master control safety chip 1 is 3.3V, then rechargeable battery 4 exports 3.3V after power conversion chip 6 Voltage is powered to master control safety chip 1 for master control safety chip 1.It is steady that low pressure difference linearity may be used in the power conversion chip 6 Depressor LDO can also use dc voltage changer DC/DC.
The power management module 5 further includes (playing charge protection and mistake for carrying out charge protection to rechargeable battery 4 Fill protection) charge management circuit 7, the charge management circuit 7 connect with rechargeable battery 4.Charge management circuit 7 can be with It is connect with master control safety chip 1, when charging to rechargeable battery 4, master control safety chip 1 is by monitoring Charge Management electricity Road 7 monitors whether rechargeable battery 4 is full of, full of when can show the prompt message having been filled on a display screen, therefore, The ciphering and deciphering device can also include the display module 8 being connect with master control safety chip 1.
In present embodiment, first USB interface 2 is different types of USB interface with the secondary USB interface 3, the One USB interface 2 is standard USB interface, and the terminal devices such as PC machine can connect ciphering and deciphering device by the first USB interface 2, described Secondary USB interface 3 is the USB interface except standard USB interface, and concrete type can select according to actual needs, has and mutually fits It can be connect with ciphering and deciphering device by secondary USB interface with the terminal devices such as usb type mobile phone or PAD.
In present embodiment, the device medium of the ciphering and deciphering device is the apparatus carriers of wearable smart machine, should Ciphering and deciphering device can be fabricated to the form of wearable device, such as bracelet or wrist-watch, be convenient for carrying.
Based on ciphering and deciphering device shown in Fig. 1, present embodiment additionally provides a kind of encipher-decipher method, the encryption and decryption side Method needs secure storage after the data encryption by terminal device suitable for user, even if terminal device is lost or stolen, it is other not Method molecule can not also access the data.This method includes that be-encrypted data is encrypted and encrypted data are decrypted The step of.Wherein, by mode that be-encrypted data is encrypted as shown in Fig. 2, mainly including the following steps that:
Step S11:Terminal device is connect by USB interface with ciphering and deciphering device, and encrypted to ciphering and deciphering device transmission Personal identification number,;
Step S12:For the personal identification number and its storage inside that master control safety chip is sent by comparing terminal device Whether people's identification code is identical to be verified terminal device;
Terminal device with USB interface, according to its usb type, select ciphering and deciphering device the first USB interface or Secondary USB interface is connect with ciphering and deciphering device, and after connection, terminal device is to ciphering and deciphering device sending device checking request, equipment Checking request includes encrypted personal identification number, which is used for authentication of the ciphering and deciphering device to equipment, tests Demonstrate,prove whether user is validated user.In practical application, installing terminal equipment encryption and decryption client corresponding with the ciphering and deciphering device Software carries out data interaction by USB interface and ciphering and deciphering device.
After ciphering and deciphering device receives the device authentication request of the transmission of terminal device, master control safety chip is prestored using it Decruption key encrypted personal identification number is decrypted, obtain terminal device transmission personal identification number, decryption is obtained Personal identification number be compared with pre-stored personal identification number in ciphering and deciphering device, if two personal identification number one It causes, terminal device can carry out subsequent operation by ciphering and deciphering device, if it is inconsistent, ciphering and deciphering device tests terminal device Card does not pass through, and master control safety chip sends authentication error prompt to terminal device.
In practical applications, the solution that terminal device will prestore in key and ciphering and deciphering device that personal identification number is encrypted Key is that terminal device is made an appointment with ciphering and deciphering device, but the encryption key or decruption key will with ciphering and deciphering device The key that be-encrypted data is encrypted or decrypts is different.
Step S13:After terminal device is verified, be-encrypted data is sent to ciphering and deciphering device, master control by terminal device Safety chip returns to terminal device after encrypting be-encrypted data.
After terminal device is verified, ciphering and deciphering device meeting prompt terminal equipment sends the prompt of be-encrypted data, adds After decryption device receives the be-encrypted data of terminal device transmission, data are encrypted in master control safety chip, at encryption It is retransmited back after reason in terminal device.
When terminal device, which needs to access, reads its data encrypted by ciphering and deciphering device, encryption data is solved Close mode is similar with above-mentioned cipher mode, mainly includes the following steps that:
(1) terminal device with USB interface is connect by the first USB interface or secondary USB interface with ciphering and deciphering device, Encrypted personal identification number is sent to ciphering and deciphering device by terminal device;
(2) information that master control safety chip receives and decryption terminal equipment is sent obtains the personal of terminal device transmission and knows Other code, whether the personal identification number that comparison terminal equipment is sent is identical as the personal identification number of its storage inside, if so, into In next step, if it is not, then master control safety chip sends authentication error prompt to terminal device;
(3) encryption data is sent to master control safety chip by terminal device, after master control safety chip decrypts encryption data Back to terminal device.
By above-mentioned encipher-decipher method shown in Fig. 2, by the data for needing secure storage in terminal device by adding solution It is then stored into the terminal device after close device encryption, and when the terminal device needs to read the data, by ciphering and deciphering device It is encrypted after the secure decryption of data and the data after decryption is returned into the terminal device again, realize data in terminal device Secure storage and access.For example, when for needing being stored after the significant data encryption in a PC machine, PC machine passes through first USB interface is connected with ciphering and deciphering device, and is sent data by the first USB interface by the encryption and decryption client software of PC machine To ciphering and deciphering device, the master control safety chip of ciphering and deciphering device by the key of its memory and Encryption Algorithm to after data encryption again PC machine is returned to by the first USB interface.Equally, when user needs the significant data in a mobile phone encrypting storage, lead to It crosses after secondary USB interface is connect with ciphering and deciphering device after transmitting data to device encryption, ciphering and deciphering device is again by encryption data Return to mobile phone storage.
Another encipher-decipher method that present embodiment also provides, the encipher-decipher method are needed suitable for user by an end It is stored securely in after the data encryption of end equipment in another terminal device.This method also include be-encrypted data is encrypted and The step of encrypted data are decrypted.Wherein, mode be-encrypted data being encrypted is as shown in figure 3, main packet Include following steps:
Step S21:Two terminal devices are connect with ciphering and deciphering device respectively, and respectively to encryption and decryption equipment send encryption after Personal identification number;
Step S22:Ciphering and deciphering device compares the personal identification number that first terminal equipment and second terminal equipment are sent respectively The personal identification number stored with it whether all same;
First terminal equipment and second terminal equipment with USB interface are connect by two USB of encryption and decryption equipment respectively Mouth is connect with ciphering and deciphering device, and after connection, first terminal equipment and second terminal equipment are respectively to ciphering and deciphering device sending device Checking request, wherein device authentication request includes encrypted personal identification number, which is used for ciphering and deciphering device pair The verification of equipment.
Ciphering and deciphering device receives the request for the verification personal identification number that first terminal equipment and second terminal equipment are sent Afterwards, master control safety chip is decrypted the encrypted personal identification number of first terminal equipment using the first decruption key, obtains The personal identification number that first terminal equipment is sent, the encrypted personal knowledge that second terminal equipment is sent using the second decruption key Other code is decrypted, and obtains the personal identification number of second terminal equipment transmission, and the individual for respectively sending first terminal equipment The personal identification number that identification code and second terminal equipment are sent is compared with its personal identification number to prestore, and only there are two comparison results All same i.e. two terminal device by verification after, could carry out in next step, otherwise, master control safety chip to verification do not pass through Terminal device send authentication error prompt.
Wherein, the first decruption key is that ciphering and deciphering device is arranged with first terminal equipment, is encrypted with first terminal equipment The corresponding decruption key of key of personal identification number;Second decruption key be ciphering and deciphering device and second terminal equipment about Decruption key fixed, corresponding with the second terminal equipment encryption key of personal identification number.In practical applications, the first decryption Key may be the same or different with the second decruption key.
Step S23:After two terminal device verifications pass through, first terminal equipment will be to be encrypted to ciphering and deciphering device transmission Data safety stores the instruction to second terminal equipment, and instruction includes be-encrypted data, and master control safety chip is whole according to first The instruction of end equipment is sent to second terminal equipment after encrypting be-encrypted data.
It is corresponding with encryption method shown in Fig. 3, include by the mode that encryption data is decrypted:
(1) the first terminal equipment with USB interface is connect by the first USB interface with ciphering and deciphering device, is connect with USB The second terminal equipment of mouth is connect by secondary USB interface with ciphering and deciphering device, first terminal equipment and second terminal equipment point Not to ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
(2) ciphering and deciphering device receives the device authentication request that first terminal equipment and second terminal equipment are sent respectively, main The encrypted personal identification number that control safety chip is sent according to the first decryption key decryption first terminal equipment that it prestores, uses The encrypted personal identification number that second decryption key decryption second terminal equipment is sent, and it is respectively compared first terminal equipment and the The personal identification number for personal identification number and its storage inside that two terminal devices are sent whether all same, if so, into next Step, if it is not, then master control safety chip sends authentication error prompt to different terminal device;
(3) second terminal equipment is sent to the finger of first terminal equipment after decrypting encryption data to ciphering and deciphering device transmission It enables, master control safety chip is sent to first terminal equipment according to the instruction of second terminal equipment after decrypting encryption data.
By encipher-decipher method shown in Fig. 3, after the data in first terminal equipment are encrypted by ciphering and deciphering device Being sent to progress safety in second terminal equipment can store, and when first terminal equipment needs to read the data, be filled by encryption and decryption It sets and the data after decryption is returned into first terminal equipment again after carrying out secure decryption to the encryption data in second terminal equipment, It realizes and data in first terminal equipment is separately deposited and accessed safely in second terminal equipment.For example, when user needs one When after the significant data encryption in part PC machine in storage to mobile phone, PC machine is connect by the first USB interface with ciphering and deciphering device, is led to Cross the data that its encryption and decryption client software will store on mobile phone and be sent to ciphering and deciphering device, ciphering and deciphering device to data into It is sent in mobile phone and is stored by secondary USB interface after row encryption.
When the two kinds of encipher-decipher methods provided using present embodiment, ciphering and deciphering device can be only in terminal recognition first Terminal device is verified by personal identification number when secondary connection terminal device, after being verified for the first time, can give tacit consent to by Terminal device and encryption and decryption apparatus bound, terminal device, which reuses ciphering and deciphering device, is, need not can again verify, to carry High efficiency.
Using ciphering and deciphering device provided by the present invention and method, the terminal devices such as mobile phone or PC machine with ciphering and deciphering device When communication carries out data encryption or reads ciphertext data, subsequent operation can be carried out by being required for first carrying out PIN code verification, not had There are the participation of ciphering and deciphering device, the encryption data stored in mobile phone or PC machine that can not access, other users cannot at will read hand Pass through encrypted data in machine or PC machine, realizes the secure storage of data in equipment.
Ciphering and deciphering device proposed by the present invention can solve the requirement of user's safe data storage in terminal device, and The composition device of device is few, can be fabricated to bracelet small, easy to carry or other portable devices.Pass through " the hand The use of ring ", user store after PC machine can be needed to data file encryption to be protected into mobile phone.The user of " bracelet " must It must be can be used by authentication rear, such as PIN code verification.The user for holding " bracelet " passes through the encryption and decryption visitor of mobile phone terminal Family end can easily access the encryption data in mobile phone.
Obviously, various changes and modifications can be made to the invention without departing from essence of the invention by those skilled in the art God and range.In this way, if these modifications and changes of the present invention belongs to the range of the claims in the present invention and its equivalent technology Within, then the present invention is also intended to include these modifications and variations.

Claims (10)

1. a kind of ciphering and deciphering device, it is characterised in that:Master control safety chip (1) including being stored with personal identification number, respectively with The first USB interface (2) and secondary USB interface (3) of master control safety chip (1) connection, secure storage in master control safety chip (1) There are various keys, PIN code, exterior terminal equipment to connect with ciphering and deciphering device by the first USB interface (2) or secondary USB interface (3) After connecing, the authentication for the terminal device being connect with ciphering and deciphering device is realized by PIN code, it is real by master control safety chip (1) Now the safety of data is encrypted, encrypted data are decrypted by the master control safety chip (1) of the ciphering and deciphering device;Further include using In the rechargeable battery (4) powered for device, rechargeable battery (4) is connect with the master control safety chip (1).
2. a kind of ciphering and deciphering device according to claim 1, it is characterised in that:The device further includes to rechargeable battery (4) power management module (5) of charging and power supply management is carried out, rechargeable battery (4) passes through power management module (5) and master control Safety chip (1) connects.
3. a kind of ciphering and deciphering device according to claim 2, it is characterised in that:The power management module (5) includes electricity Power-switching circuit (6), rechargeable battery (4) are connect by power-switching circuit (6) with master control safety chip (1).
4. a kind of ciphering and deciphering device according to claim 3, it is characterised in that:The power management module (5) further includes For to rechargeable battery (4) carry out charge protection charge management circuit (7), the charge management circuit (7) with it is chargeable Battery (4) connects.
5. a kind of ciphering and deciphering device according to claim 4, it is characterised in that:The device further includes and master control safety chip (1) display module (8) connected, the charge management circuit (7) also connect with master control safety chip (1).
6. a kind of ciphering and deciphering device according to claim 1, it is characterised in that:The master control safety chip (1) is built-in The safety chip of TimeCOS smart card operating systems.
7. a kind of ciphering and deciphering device according to one of claim 1 to 6, it is characterised in that:First USB interface (2) For standard USB interface;The secondary USB interface (3) is the USB interface except standard USB interface.
8. a kind of ciphering and deciphering device according to one of claim 1 to 6, it is characterised in that:The dress of the ciphering and deciphering device Set the apparatus carriers that carrier is wearable smart machine.
9. being carried out based on a kind of a kind of encipher-decipher method of ciphering and deciphering device described in claim 1, including by be-encrypted data The step of encrypting and encryption data be decrypted, it is characterised in that:Include by the mode that be-encrypted data is encrypted:
(1) terminal device with USB interface is connect by the first USB interface or secondary USB interface with ciphering and deciphering device, and to Ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
(2) the device authentication request that ciphering and deciphering device receiving terminal apparatus is sent, the decryption that master control safety chip prestores according to it Encrypted personal identification number described in secret key decryption, and compare the personal identification number of the personal identification number and its storage inside after decryption It is whether identical, if so, entering in next step, if it is not, then master control safety chip sends authentication error prompt to terminal device;It is described Decruption key is solution that ciphering and deciphering device is arranged with terminal device, corresponding with the terminal device encryption key of personal identification number Key;
(3) be-encrypted data is sent to master control safety chip by terminal device, after master control safety chip encrypts be-encrypted data Back to terminal device;
Include by the mode that encryption data is decrypted:
1) terminal device with USB interface is connect by the first USB interface or secondary USB interface with ciphering and deciphering device, and to Ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
2) the device authentication request that ciphering and deciphering device receiving terminal apparatus is sent, master control safety chip are close according to the decryption that it prestores Key decrypts the encrypted personal identification number, and the personal identification number for comparing personal identification number and its storage inside after decryption is It is no identical, if so, entering in next step, if it is not, then master control safety chip sends authentication error prompt to terminal device;
3) encryption data is sent to master control safety chip by terminal device, and master control safety chip returns to after decrypting encryption data Terminal device.
10. being carried out based on a kind of a kind of encipher-decipher method of ciphering and deciphering device described in claim 1, including by be-encrypted data The step of encrypting and encryption data be decrypted;It is characterized in that:Include by the mode that be-encrypted data is encrypted:
(1) the first terminal equipment with USB interface is connect by the first USB interface with ciphering and deciphering device, with USB interface Second terminal equipment is connect by secondary USB interface with ciphering and deciphering device, first terminal equipment and second terminal equipment respectively to Ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
(2) ciphering and deciphering device receives the device authentication request that first terminal equipment and second terminal equipment are sent, master control peace respectively The encrypted personal identification number that full chip is sent according to the first decryption key decryption first terminal equipment that it prestores, using second The encrypted personal identification number that decryption key decryption second terminal equipment is sent, and it is respectively compared first terminal equipment and second eventually The personal identification number for personal identification number and its storage inside that end equipment is sent whether all same, if so, enter in next step, if No, then master control safety chip sends authentication error prompt to different terminal device;
First decruption key is arranged for ciphering and deciphering device with first terminal equipment and first terminal equipment encryption individual knows The corresponding decruption key of key of other code;That second decruption key is arranged for ciphering and deciphering device with second terminal equipment, Decruption key corresponding with the second terminal equipment encryption key of personal identification number;
(3) first terminal equipment sends the instruction that be-encrypted data is safely stored into second terminal equipment to ciphering and deciphering device, Master control safety chip is sent to second terminal equipment according to the instruction of first terminal equipment after encrypting be-encrypted data;
Include by the mode that encryption data is decrypted:
1) the first terminal equipment with USB interface is connect by the first USB interface with ciphering and deciphering device, with USB interface Second terminal equipment is connect by secondary USB interface with ciphering and deciphering device, first terminal equipment and second terminal equipment respectively to Ciphering and deciphering device sending device checking request;The device authentication request includes encrypted personal identification number;
2) ciphering and deciphering device receives the device authentication request that first terminal equipment and second terminal equipment are sent, master control safety respectively The encrypted personal identification number that chip is sent according to the first decryption key decryption first terminal equipment that it prestores, using the second solution The encrypted personal identification number that close secret key decryption second terminal equipment is sent, and it is respectively compared first terminal equipment and second terminal The personal identification number for personal identification number and its storage inside that equipment is sent whether all same, if so, enter in next step, if No, then master control safety chip sends authentication error prompt to different terminal device;
3) second terminal equipment is sent to the instruction of first terminal equipment after decrypting encryption data to ciphering and deciphering device transmission, main Safety chip is controlled according to the instruction of second terminal equipment, first terminal equipment is sent to after encryption data is decrypted.
CN201510969806.6A 2015-12-22 2015-12-22 A kind of ciphering and deciphering device and method Expired - Fee Related CN105631298B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510969806.6A CN105631298B (en) 2015-12-22 2015-12-22 A kind of ciphering and deciphering device and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510969806.6A CN105631298B (en) 2015-12-22 2015-12-22 A kind of ciphering and deciphering device and method

Publications (2)

Publication Number Publication Date
CN105631298A CN105631298A (en) 2016-06-01
CN105631298B true CN105631298B (en) 2018-10-19

Family

ID=56046224

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510969806.6A Expired - Fee Related CN105631298B (en) 2015-12-22 2015-12-22 A kind of ciphering and deciphering device and method

Country Status (1)

Country Link
CN (1) CN105631298B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106299907B (en) * 2016-09-24 2018-07-31 广东胜怡电器科技有限公司 A kind of data connector having decryption function and decryption device and method
CN108600224B (en) * 2018-04-25 2022-02-22 深圳市道通科技股份有限公司 Diagnostic device and method for secure access to a diagnostic device
CN109543472A (en) * 2018-11-22 2019-03-29 北京双洲科技有限公司 Data safety exchange system
CN113420267B (en) * 2021-08-24 2021-11-09 北京芯愿景软件技术股份有限公司 Storage device and data reading method
CN113703838B (en) * 2021-08-30 2024-01-05 远景智能国际私人投资有限公司 Equipment control method, device, equipment and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101841353A (en) * 2010-03-08 2010-09-22 华为终端有限公司 Method and equipment for encrypting data through softdog
CN103020523A (en) * 2012-11-27 2013-04-03 张应刚 Data ferry control device for computer with high safety level
CN104182676A (en) * 2014-09-04 2014-12-03 北京邮电大学 Intelligent terminal data encryption method and device

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090113093A1 (en) * 2007-10-29 2009-04-30 Mike Chen Mobile storage device

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101841353A (en) * 2010-03-08 2010-09-22 华为终端有限公司 Method and equipment for encrypting data through softdog
CN103020523A (en) * 2012-11-27 2013-04-03 张应刚 Data ferry control device for computer with high safety level
CN104182676A (en) * 2014-09-04 2014-12-03 北京邮电大学 Intelligent terminal data encryption method and device

Also Published As

Publication number Publication date
CN105631298A (en) 2016-06-01

Similar Documents

Publication Publication Date Title
CN106779636B (en) Block chain digital currency wallet based on mobile phone earphone interface
CN105631298B (en) A kind of ciphering and deciphering device and method
US9363079B2 (en) Method of generating message authentication code and authentication device and authentication request device using the method
CN106911476B (en) Encryption and decryption device and method
CN103826221B (en) Encryption communication method, related system and method based on bluetooth
CN102065148A (en) Memory system access authorizing method based on communication network
CN109617675B (en) Method and system for authenticating identifiers of both sides between charge and discharge facility and user terminal
CN106611310B (en) Data processing method, wearable electronic device and system
CN101247605A (en) Short information enciphering and endorsement method, mobile terminal and short information ciphering system
CN103220295A (en) Document encryption and decryption method, device and system
CN110084054A (en) A kind of data privacy device, method, electronic equipment and storage medium
CN101621794A (en) Method for realizing safe authentication of wireless application service system
CN106465044B (en) Method, apparatus and system for wireless power transmission
CN101488111A (en) Identification authentication method and system
KR20120051344A (en) Portable integrated security memory device and service processing apparatus and method using the same
CN101964805B (en) Method, equipment and system for safely sending and receiving data
CN109600725A (en) A kind of message encryption method based on SM9 algorithm
US20140025946A1 (en) Audio-security storage apparatus and method for managing certificate using the same
CN104867004A (en) Mobile payment system and mobile payment method thereof
CN106909824A (en) A kind of ciphering and deciphering device and method
CN104346586B (en) The method of the storage device and type self-destroyed protection data of type self-destroyed protection data
CN103118351B (en) The generation method and apparatus of repaid card data
CN110191136A (en) A kind of convenient and fast file secure transmission method and equipment
CN102270182A (en) Encrypted mobile storage equipment based on synchronous user and host machine authentication
CN104732134A (en) Information safety device with software protection function and authentication method thereof

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20181019

Termination date: 20211222